Insurance coverage large Globe Life says an unknown risk actor tried to extort cash in alternate for not publishing knowledge stolen from the corporate’s techniques earlier this yr.
Based in 1900, Globe Life is among the many largest suppliers of life and medical insurance plans in the US, with a market capitalization of $12 billion and a complete income that exceeds $5.3 billion.
International Life beforehand disclosed a knowledge breach on June 13 after discovering they’d been compromised whereas reviewing potential vulnerabilities associated to entry permissions and consumer identification administration for its net portal.
On the time, the corporate warned that the hackers might have accessed client and policyholder knowledge following a profitable breach of one of many net portals.
Though the corporate’s operations weren’t considerably disrupted because of the incident, there was concern about what knowledge may need been stolen, as such a state of affairs might probably affect tens of millions.
In a brand new submitting submitted to the SEC right this moment, Globe Life says that no less than 5,000 clients of its subsidiary, American Revenue Life Insurance coverage Firm, are impacted. Nonetheless, this quantity might enhance because the investigation continues.
Globe Life additionally says that the cybercriminals behind the assault tried to extort the corporate into paying a ransom in alternate for not publishing the stolen knowledge.
The information samples the agency obtained from the risk actor look like associated to one in all its subsidiaries, American Revenue Life Insurance coverage Firm.
“Globe Life Inc. recently received communications from an unknown threat actor seeking to extort money from the Company in exchange for not disclosing certain information held and used by the Company and its independent agents,” reads the Thursday morning SEC submitting.
“Based on the Company’s investigation to date, which remains ongoing, the Company believes that information relayed to the Company by the threat actor may relate to certain customers and customer leads that can be traced to the Company’s subsidiary, American Income Life Insurance Company.”
The knowledge stolen by the cybercriminals contains the next knowledge varieties, which range per particular person: full names, electronic mail addresses, telephone numbers, postal addresses, Social Safety Numbers, health-related knowledge, and coverage info.
International Life has additionally clarified that the extortion try doesn’t contain ransomware, so there was no knowledge encryption of file locks on the corporate’s techniques.
Concerning the monetary affect of the incident, as of right this moment, International Life believes that it’ll not have a cloth affect on its enterprise operations and doesn’t anticipate it to have an effect on its financials.